HTTPS and Drupal

There are countless reasons why any given website should support the use of the HTTP Secure protocol (indicated in URLs with the protocol-and-connection prefix "https://"). If visitors to your website will be submitting confidential information — such as credit card numbers — in web forms, then the connections between the visitors' computers and the web server should be encrypted using HTTPS. The Drupal community documentation includes a page with helpful information for properly configuring your web server and Drupal itself.